$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JYJqM4ZRM6uMIh1xT7VT8UU7Q38.roa File: JYJqM4ZRM6uMIh1xT7VT8UU7Q38.roa (raw, json) Hash identifier: gEYSCv6nhHg4m+J0a2DceYgL+ndi5kE5Txj3eFZA7QQ= Subject key identifier: 25:82:6A:33:86:51:33:AB:8C:22:1D:71:4F:B5:53:F1:45:3B:43:7F Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 193D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JYJqM4ZRM6uMIh1xT7VT8UU7Q38.roa Signing time: Fri 22 Aug 2025 09:02:53 +0000 ROA not before: Fri 22 Aug 2025 09:02:53 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 198949 IP address blocks: 203.75.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 00:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6461 (0x193d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 22 09:02:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=25826A33865133AB8C221D714FB553F1453B437F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:25:80:ad:f8:5e:af:f0:8e:c4:cb:10:ad:e7: c7:c6:ad:55:ed:7c:df:f3:16:85:4d:8d:69:ec:e7: a8:fd:6b:9f:a2:8f:ac:54:7d:09:93:46:fe:fa:08: 10:ff:b2:dc:aa:59:7c:3b:4e:c1:b3:1b:17:6b:9a: bc:22:e7:20:0f:32:0a:10:23:f2:57:12:8c:7f:ef: 6c:fc:38:5a:99:e6:72:57:c1:90:cd:6d:8d:f1:b3: 4e:98:4e:bb:6f:b1:bb:95:9b:cd:17:2c:9b:4f:7b: 1e:fa:af:b1:ac:21:40:89:73:e1:90:6f:0d:18:83: 64:5f:40:be:24:0e:2c:f9:cf:e4:d1:c3:1d:c0:14: 00:45:0b:35:c4:26:3a:94:84:6b:79:24:85:d7:e5: d7:a3:5f:d0:94:9f:d5:44:21:d0:40:86:36:63:12: ff:8c:9f:5f:b4:05:a2:be:d2:1a:ea:ea:5f:1d:00: 03:5a:11:34:db:28:d3:35:dd:ac:dc:1c:02:c2:24: cf:74:e9:88:8c:27:34:f8:43:c1:6b:55:43:80:3d: 1a:53:03:67:2f:1a:b2:eb:48:d0:8b:b3:7c:b3:15: 5f:cb:03:e3:27:21:b3:1c:bb:bd:ad:09:89:fb:a0: fd:ff:f1:95:69:db:44:3a:45:e8:72:07:99:d1:5b: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:82:6A:33:86:51:33:AB:8C:22:1D:71:4F:B5:53:F1:45:3B:43:7F X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JYJqM4ZRM6uMIh1xT7VT8UU7Q38.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.75.255.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d8:da:e7:4e:9a:38:de:01:3d:cd:36:01:59:08:21:e8:dc: 6f:86:83:7a:b7:f0:56:99:07:bb:29:e6:2f:c0:cb:f2:0a:79: db:c1:e8:cf:e4:46:0b:4b:ea:2d:9a:d9:61:01:a7:90:a5:fb: b4:7f:60:52:a2:52:41:a8:e5:8b:cd:28:d3:01:1f:0e:fb:79: bf:a3:3a:9e:10:3a:ca:f9:ee:a4:e7:d4:e4:87:dd:20:a0:6e: b9:73:ea:f6:21:12:6b:86:a6:63:33:41:98:39:e4:58:a3:9b: ca:f9:2c:22:b8:f5:b7:77:a2:b8:86:7b:22:77:aa:73:8e:c7: d8:e8:7b:93:4d:2a:f8:22:97:67:8b:75:28:d3:6a:07:d2:51: cd:23:ed:73:44:5b:7f:cd:97:ff:0e:57:1a:f0:0c:ec:69:b0: ca:06:59:bf:e7:3d:7e:92:43:5f:0f:15:59:39:62:89:22:cd: 4a:98:9e:32:39:3b:93:3f:f3:a8:84:c9:fd:ef:7e:67:dd:1f: 3e:0a:49:15:9f:b2:71:c8:ca:6f:17:26:aa:11:63:ec:55:8b: d4:95:72:ca:52:cb:bd:1b:96:ed:08:de:8b:6c:ae:ab:5d:14: bd:29:af:c7:03:95:22:02:b0:41:35:7a:b7:4c:7f:8a:86:d8: 07:2a:d3:1d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICGT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTA4MjIw OTAyNTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI1ODI2QTMzODY1MTMz QUI4QzIyMUQ3MTRGQjU1M0YxNDUzQjQzN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRJYCt+F6v8I7EyxCt58fGrVXtfN/zFoVNjWns56j9a5+ij6xU fQmTRv76CBD/styqWXw7TsGzGxdrmrwi5yAPMgoQI/JXEox/72z8OFqZ5nJXwZDN bY3xs06YTrtvsbuVm80XLJtPex76r7GsIUCJc+GQbw0Yg2RfQL4kDiz5z+TRwx3A FABFCzXEJjqUhGt5JIXX5dejX9CUn9VEIdBAhjZjEv+Mn1+0BaK+0hrq6l8dAANa ETTbKNM13azcHALCJM906YiMJzT4Q8FrVUOAPRpTA2cvGrLrSNCLs3yzFV/LA+Mn IbMcu72tCYn7oP3/8ZVp20Q6RehyB5nRW1z1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJYJqM4ZRM6uMIh1xT7VT8UU7Q38wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9KWUpxTTRaUk02dU1JaDF4VDdW VDhVVTdRMzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0v/ MA0GCSqGSIb3DQEBCwUAA4IBAQBV2NrnTpo43gE9zTYBWQgh6NxvhoN6t/BWmQe7 KeYvwMvyCnnbwejP5EYLS+otmtlhAaeQpfu0f2BSolJBqOWLzSjTAR8O+3m/ozqe EDrK+e6k59Tkh90goG65c+r2IRJrhqZjM0GYOeRYo5vK+SwiuPW3d6K4hnsid6pz jsfY6HuTTSr4Ipdni3Uo02oH0lHNI+1zRFt/zZf/Dlca8AzsabDKBlm/5z1+kkNf DxVZOWKJIs1KmJ4yOTuTP/OohMn9735n3R8+CkkVn7JxyMpvFyaqEWPsVYvUlXLK Usu9G5btCN6LbK6rXRS9Ka/HA5UiArBBNXq3TH+KhtgHKtMd -----END CERTIFICATE-----Generated at Fri Sep 5 21:13:24 2025 by rpki-client